Mwm71[.]DBSet[.]exe | Triage

Sharing

General

Target

Mwm71.DBSet.exe
Size

25KB
MD5

13c90c3bd95085b529763693f5a10e49
SHA1

0159018630a63b62bd6d0101738696d9d0224431
SHA256

462dcb8d7db43ee9c602a5e71b93c2f9cce6ca3c06f6a470506f468f44e53280
SHA512

aa787fa6f10bfe002e6532bfc85e1bee78b017a77d08784458f43c782082d60552992ec57e1ccf15f4e9f72c429867afbabec4cc9f51d33b1bafc2845ec7853b
SSDEEP

384:+0vBTqCp1xy8gCMk4JawfvUkQ8ZKn4OwDNgC2Esi3K6WUP:+OqCp1xWJw/x4/uA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Mwm71.DBSet.exe

Files

Mwm71.DBSet.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ